Sundar
Reputation: 11
Security vulnerability reported as backdoor when using OpenSSL's librypto.a library
My C code uses librypto.a library to link to the compiled source code at the final stage for implementing RSA algorithm. When a vulnerability scan was done, it comes back with a YARA signature match for the following:
YARA signature "ldpreload" classified file as as "backdoor" based on indicators: "dlopen,dlsym,fopen,fopen64,__fxstat,accept,Accept,open,Open,OPEN,opendir,readdir"
This is because I use the libcrypto.a library from Open SSL. I thought this is a widely used library for implementing crypro algorithms. How to mitigate this issue? Should try to get this whitelisted as I was not able to find any other way of implementing RSA in C without having to use OpenSSL libraries.
Upvotes: 1
Views: 208
Answers (0)
Related Questions
- Can't link OpenSSL code
- macOS Big Sur : dlopen("/usr/lib/libssl.dylib") crashes with "program is loading libcrypto in an unsafe way"
- Manually loading libcrypto (dlmopen, dlsym) segfaults; dynamically linked works
- Cannot find libcrypto library error
- Error when trying to RSA-decrypt a parameter string with libcrypto
- Handling errors in libcrypto BIO base64 decoding
- Segfault from /lib/x86_64-linux-gnu/libcrypto.so.1.0.0
- Error in libcrypto.a when make C code
- RSA_private_decrypt error code : error0407106b: lib(4):funct:(113):reason(107)
- OpenSSL rsa_private_decrypt error:0406506c:lib(4):func(101):reason(108)